Apple Vulnerability: millions of iPhone and Mac users are in danger – to protect themselves
Just by making a video call, iPhones not updated, iPads and Macs are vulnerable to hackers. Google made public the vulnerability. Apple users must therefore install the latest security update.
The Apple Facetime video call application has a problem or rather. As reported by heise.de, it was possible that hackers could block the iPhone, iPad or Mac from the victim through a video call alone. Remote attackers could, at worst, inject malicious code by video call to hijack Apple devices.
"Users should urgently import the latest Apple software updates for iPhone, iPad and Mac to protect against a serious vulnerability in Facetime," writes the German technology portal Heise.
Apple closed the vulnerability in the last week with iOS 12.1 and MacOS 10.14.1 Mojave. Mac users will have a security update from MacOS 10.12.
«For iOS 11 or more, there is no update. Security updates for older versions of iOS are an absolute rarity, "writes Heise. As of today, almost 67 percent of all iPhones and iPads are running iOS 12. However, not everyone is working with the secure version 12.1. At least a third of iOS users have not installed the latest security update 12.1 or can not be installed due to obsolete hardware. The latter can only be protected by not using Facetime on your iOS device 11 or lower.
For now, hackers could theoretically attack every third iOS device with an outdated operating system through the face-to-face call. In absolute terms, this corresponds to about 400 million iPhones and iPads, which are still vulnerable despite the Apple security update. However, there is no reason to panic, especially because specific attacks are still unknown.
Facetime's vulnerability was discovered by IT security researcher Natalie Silvanovich, who works on the Google Zero Project. This is a team of Google security experts who regularly detect vulnerabilities in their own operating systems, but also in the software of Apple and other companies.
The computer security expert Silvanovich informed Apple of the vulnerability for more than 90 days. After this period, Google usually causes public gaps to be detected. Therefore, Silvanovich has already published specific attack methods on the network, showing how the iPhones, iPads and updated Macs could not be blocked yet. Malicious hackers can do more damage.
The vulnerability recalls a critical vulnerability in WhatsApp discovered in early October, writes Heise. At that time, hackers could hijack WhatsApp video calls to smartphones that did not have the latest WhatsApp update installed. This was also discovered by Natalie Silvanovich of the Google Zero Project.
«Voice messages are stolen from life»
Video: watson / Marius Notter, Emily Engkent
You may also be interested in:
Subscribe to our newsletter